Gridinsoft Logo

The KirigiriLoader.dll (Unity playback engine) File Analysis

Updated 4 minutes ago
Checked by Malware Check
KirigiriLoader.dll

Technical Analysis

File Name KirigiriLoader.dll
File Type
PE32+ executable (DLL) (console) x86-64, for MS Windows
Scanner Version 1.0.219.174
Database Version 2025-07-03 00:00:23 UTC

Clean File

No threats detected by our scanner

0%
Detection Rate
33,609,912
File Size (bytes)
2025-07-03
Analysis Date

Scan Another File

File Identification

Hash Type Value Action
MD5
6530c32a3f09dc8e9465dec8b9caadfd
SHA1
e2e893f9fdea22e6de300f48bcdc77da184d74c1
SHA256
321ace42678995c2feb59295c9988dbb1e734439f6dca8a9b454acb172a53298
SHA512
72c2463802c9f7eac04f80481bd9c13f0da8d4c67f6e4aa63d25c31d445c3dc7ab8fa4893c1237015abfefed23a49772f7a2a452df481953374eeb420e310532
ImpHash
82ae58d3cfbd7d9c4d63143d06247b65

PE Analysis

Basic Information

Image Base 0x180000000
Entry Point 0x18198e64c
Compilation Time 2025-01-21 00:13:47
Checksum 0x02016dcf (Actual: 0x02016dcf)
OS Version 6.0
PEiD Signatures PE32+ executable (DLL) (console) x86-64, for MS Windows
PDB Path C:\build\output\unity\unity\artifacts\UnityPlayer\Win_x64_VS2022_VB_nondev_m_m\UnityPlayer_Win64_player_mono_x64.pdb
Digital Signature Chain verification from CN=Unity Technologies SF, O=Unity Technologies SF, L=San Francisco, ST=California, C=US, 2.5.4.5=3183233, 2.5.4.15=Private Organization, 1.3.6.1.4.1.311.60.2.1.2=California, 1.3.6.1.4.1.311.60.2.1.3=US (serial:5186033413333433771551035684772364319, sha1:bffd800651947878fcd0dc749c16d57b0d5e397d) failed: Unable to build a validation path for the certificate "Common Name: Unity Technologies SF, Organization: Unity Technologies SF, Locality: San Francisco, State/Province: California, Country: US, Serial Number: 3183233, Business Category: Private Organization, Incorporation State/Province: California, Incorporation Country: US" - no issuer matching "Common Name: DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1; Organization: DigiCert, Inc.; Country: US" was found
Imports 25 libraries
Exports 1 functions
Resources 6 Resources
Sections 8 Sections

Version Information

FileVersion 6000.0.36.10478517
LegalCopyright (c) 2005-2025 Unity Technologies. All rights reserved.
ProductVersion 6000.0.36f1 (9fe3b5f71dbb)
FileDescription Unity playback engine
InternalName UnityPlayer
ProductName Unity
CompanyName Unity Technologies
Translation 0x0409 0x04b0

PE Sections

Name Virtual Address Virtual Size Raw Size Entropy Characteristics MD5
.text 0x00001000 27,197,384 bytes 27,197,440 bytes 6.53 (Compressed) IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ F898B577D4365C119E8CBA35DBB795CB
.rdata 0x019f1000 4,641,806 bytes 4,642,304 bytes 6.23 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 934059BB78D53F34ADFC388D97D5FBB5
.data 0x01e5f000 1,311,560 bytes 317,440 bytes 2.70 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE E1E3097600B1B2D5FE12524BC46E526A
.pdata 0x01fa0000 1,235,580 bytes 1,235,968 bytes 6.87 (Compressed) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ AFF8CBAEAF55322D7E3D589EC8F6267D
.rodata 0x020ce000 2,944 bytes 3,072 bytes 4.15 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ F0BF253A478300BF5750BCD2E43DD6F2
_RDATA 0x020cf000 69,332 bytes 69,632 bytes 6.58 (Compressed) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 25E54FBE3FCC3427512FF99281261E43
.rsrc 0x020e0000 2,536 bytes 2,560 bytes 3.36 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ D57FDDBCAAF2EC7E6F2BDEBE6E071FEA
.reloc 0x020e1000 131,320 bytes 131,584 bytes 5.47 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ 0AAC8102BADCE17C64FF1E056D6015ED
Entropy Analysis Alert

3 section(s) with elevated entropy (≥6.5) - possible compression

Resource Analysis

Total Resources: 6 (2,160 bytes)
Resource Type Count Total Size Percentage
RT_DIALOG 5 1,372 bytes
63.5%
RT_VERSION 1 788 bytes
36.5%

Certificate Chain Analysis

Certificate Information
Product Unity
Description Unity playback engine
File Version 6000.0.36.10478517
Signing Date 12:16 AM 01/21/2025 (162 days ago)
Verification Status Signed
Signers Unity Technologies SF; DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1; DigiCert Trusted Root G4; DigiCert
Counter Signers DigiCert Timestamp 2024; DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA; DigiCert Trusted Root G4; DigiCert
Internal Name UnityPlayer
Copyright (c) 2005-2025 Unity Technologies. All rights reserved.
Certificate Chain Summary
Unity Technologies SF #1 Primary
Validity Period: 2023-12-11 00:00:00 → 2026-06-08 23:59:59
Signature Algorithm: sha256RSA
Serial Number: 03 E6 CB 30 35 09 9E 63 9E F3 35 EA CD 37 C0 1F
DigiCert Timestamp 2024 #2 Chain
Validity Period: 2024-09-26 00:00:00 → 2035-11-25 23:59:59
Signature Algorithm: sha256RSA
Serial Number: 0B AE 66 BC 5A BA 7F 95 87 C6 F9 E9 04 E3 33 04
DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA #3 Chain
Validity Period: 2022-03-23 00:00:00 → 2037-03-22 23:59:59
Signature Algorithm: sha256RSA
Serial Number: 07 36 37 B7 24 54 7C D8 47 AC FD 28 66 2A 5E 5B
DigiCert Trusted Root G4 #4 Chain
Validity Period: 2022-08-01 00:00:00 → 2031-11-09 23:59:59
Signature Algorithm: sha384RSA
Serial Number: 0E 9B 18 8E F9 D0 2D E7 EF DB 50 E2 08 40 18 5A

✓ This file has been digitally signed and the certificate chain has been verified

  • The signature ensures file integrity and authenticity from the publisher
  • Timestamping proves when the signature was applied
Certificate Verification Status

Chain verification from CN=Unity Technologies SF, O=Unity Technologies SF, L=San Francisco, ST=California, C=US, 2.5.4.5=3183233, 2.5.4.15=Private Organization, 1.3.6.1.4.1.311.60.2.1.2=California, 1.3.6.1.4.1.311.60.2.1.3=US (serial:5186033413333433771551035684772364319, sha1:bffd800651947878fcd0dc749c16d57b0d5e397d) failed: Unable to build a validation path for the certificate "Common Name: Unity Technologies SF, Organization: Unity Technologies SF, Locality: San Francisco, State/Province: California, Country: US, Serial Number: 3183233, Business Category: Private Organization, Incorporation State/Province: California, Incorporation Country: US" - no issuer matching "Common Name: DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1; Organization: DigiCert, Inc.; Country: US" was found

Recommendation: Verify the file source and ensure it comes from a trusted publisher.

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

  1. Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
  2. Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
  3. Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
  4. Email Security: Be cautious with email attachments and links, even from known contacts.
Proactive Protection
This file passed all security checks, but stay vigilant. New malware variants appear daily that can evade detection. Always verify files come from official sources and check digital signatures when available.

Leave a Comment

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.
Your Score for

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Anti-Malware Download Now
Gridinsoft Anti-Malware